Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e3134372e35372e302f32342d3234203d3e203230343733.roa
File: 3139342e3134372e35372e302f32342d3234203d3e203230343733.roa (raw, json)
Hash identifier: Qa0VvwDqdWBB2UHl+qlnVHTSdTIIbfOTf2DxiixjfT0=
Subject key identifier: D1:27:44:C1:C8:FA:0C:F9:75:BA:3E:A4:91:8A:DF:BF:3B:23:80:BC
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 2B4D3DDA0E1C1874A70527857D50694E56085F9E
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e3134372e35372e302f32342d3234203d3e203230343733.roa
Signing time: Mon 26 Feb 2024 08:52:55 +0000
ROA not before: Mon 26 Feb 2024 08:47:55 +0000
ROA not after: Mon 24 Feb 2025 08:52:55 +0000
asID: 20473
IP address blocks: 194.147.57.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 12:48:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:4d:3d:da:0e:1c:18:74:a7:05:27:85:7d:50:69:4e:56:08:5f:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Feb 26 08:47:55 2024 GMT
Not After : Feb 24 08:52:55 2025 GMT
Subject: CN=D12744C1C8FA0CF975BA3EA4918ADFBF3B2380BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:57:44:a2:c2:7d:c7:cc:5b:9e:53:2e:58:76:
5c:48:06:c7:77:a6:41:e8:2c:03:db:18:e4:c2:87:
7e:a5:d7:db:44:28:08:6a:18:15:fd:22:9f:1d:02:
fb:a5:fe:3a:7a:bd:fc:ce:53:ab:0f:a3:e9:45:f5:
be:df:a5:52:0f:fe:0a:ed:89:b4:0d:b9:77:17:2b:
f4:9b:67:6c:0a:be:a7:92:2d:93:19:79:e4:09:1e:
8c:63:5c:07:5e:b5:4e:73:18:c9:1e:36:cd:9f:99:
0c:ac:dd:96:f2:a0:db:30:44:a1:74:7f:a4:6a:9c:
2e:aa:85:48:e9:5a:96:cc:19:aa:1d:1b:47:e0:dd:
f8:61:fe:1f:6e:e0:60:00:43:3e:5d:0c:7b:8d:19:
20:30:b9:cb:67:98:4e:35:07:c5:13:e3:8d:84:71:
5c:13:ba:11:d9:e3:57:2a:02:65:f0:22:92:6b:94:
91:b1:0c:38:93:b7:d6:47:5d:6b:a6:cd:2d:ae:a8:
14:31:74:c3:fa:79:41:68:b9:89:1c:cf:77:2e:c3:
9a:38:dd:15:7d:c6:a8:19:73:bd:d5:e5:f8:35:ab:
d4:24:1f:23:e9:15:e0:ec:9d:ac:ae:1e:b9:eb:11:
e9:d2:99:21:74:2c:40:f3:2a:25:37:85:69:5d:e2:
ee:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:27:44:C1:C8:FA:0C:F9:75:BA:3E:A4:91:8A:DF:BF:3B:23:80:BC
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e3134372e35372e302f32342d3234203d3e203230343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.57.0/24
Signature Algorithm: sha256WithRSAEncryption
54:cb:75:2b:03:73:16:e6:2e:81:e0:57:9f:e4:c3:6f:e8:7f:
c9:08:80:54:0a:5f:1d:d9:d9:75:60:4a:0f:53:6f:00:63:d5:
fa:44:80:ed:a7:9c:88:86:bd:91:c6:d8:c5:6c:82:a2:ed:23:
c5:a9:31:7a:3a:49:e6:aa:ca:63:62:6d:c4:63:8c:33:fd:3d:
40:bf:2f:da:98:05:bf:6c:8c:d8:14:78:20:63:3b:d7:51:59:
7e:57:c6:07:3a:92:bc:98:93:da:12:7b:35:2b:67:51:24:69:
d6:c2:93:7e:7f:de:f8:21:26:b8:4c:5b:cc:fc:ef:b0:e3:2b:
d3:9e:44:03:8b:6b:47:1c:0b:22:81:44:8b:ab:fc:80:d2:eb:
40:88:c2:e3:57:1b:7f:9c:29:c8:cf:b7:d5:ee:65:aa:9b:8d:
6b:46:fe:16:23:5a:d1:c2:d7:78:b8:d4:9e:03:ce:6b:f6:a1:
f9:be:82:7c:cb:30:9d:97:6b:89:d5:34:17:ba:3e:92:c7:4b:
5c:74:dc:7d:66:71:22:d7:93:20:19:bb:b8:f3:38:27:6a:fd:
92:51:82:7c:a1:de:50:8e:d7:bd:09:8a:7f:ad:2e:c8:c8:b0:
13:ea:41:de:7f:2b:94:48:36:50:bc:8c:81:d8:e4:e9:92:ff:
a7:46:83:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 21:50:43 2024 by rpki-client on console-ams.rpki-client.org